Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cracker vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2008-2888
Multiple PHP remote file inclusion vulnerabilities in MiGCMS 2.0.5, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the GLOBALS[application][app_root] parameter to (1) collection.class.php and (2) content_image.class.php i...
Migcms Migcms 2.0.5
1 EDB exploit
1000
VMScore
CVE-2007-0495
PHP remote file inclusion vulnerability in include/config.inc.php in PhpSherpa allows remote malicious users to execute arbitrary PHP code via a URL in the racine parameter.
Phpsherpa Phpsherpa
1 EDB exploit
1000
VMScore
CVE-2007-0496
PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the g_strRootDir parameter.
Neon Labs Neon Labs Website
1 EDB exploit
1000
VMScore
CVE-2006-6567
PHP remote file inclusion vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
1000
VMScore
CVE-2006-6568
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
935
VMScore
CVE-2008-5210
Multiple PHP remote file inclusion vulnerabilities in PhpBlock A8.5 allow remote malicious users to execute arbitrary PHP code via a URL in the PATH_TO_CODE parameter to (1) script/init/createallimagecache.php, (2) allincludefortick.php and (3) test.php in script/tick/, and (4) m...
Phpblock Phpblock A8.5
1 EDB exploit
935
VMScore
CVE-2008-5171
Multiple directory traversal vulnerabilities in admin/minibb/index.php in phpBLASTER CMS 1.0 RC1, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via directory traversal sequences in the (1) DB, (2) lang, and (3) skin pa...
Phpblaster Phpblaster Cms 1.0
1 EDB exploit
935
VMScore
CVE-2008-3595
PHP remote file inclusion vulnerability in examples/txtSQLAdmin/startup.php in txtSQL 2.2 Final allows remote malicious users to execute arbitrary PHP code via a URL in the CFG[txtsql][class] parameter.
Txtsql Txtsql 2.2
1 EDB exploit
935
VMScore
CVE-2008-2898
Directory traversal vulnerability in includes/header.php in Hedgehog-CMS 1.21 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the c_temp_path parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by...
Hedgehog-cms Hedgehog-cms 1.21
1 EDB exploit
935
VMScore
CVE-2008-2885
PHP remote file inclusion vulnerability in src/browser/resource/categories/resource_categories_view.php in Open Digital Assets Repository System (ODARS) 1.0.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the CLASSES_R...
Odars Odars 1.0.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »